IntelliZone portal
This section contains the release notes for the IntelliZone console.
Version 1.18.0
Release date: 2024.09.30
New features
The Licensing page is now available. You can access this page to view existing licenses, and users with administrator rights can add new licenses.
Improvements
The Sandbox Analyzer page has been redesigned:
The Quick Sumbission and Advanced Sumission options are now available as tabs under the Sandbox Analyzer page.
Restructured the Advanced Sumission tab and made several changes to the UI to streamline the submission process and provide an overall better user experience.
Version 1.17.0
Release date: 2024.09.23
Improvements
Performed minor text modifications on multiple pages.
Actor details window
You can now switch between information relavant to last month, or for all time.
Threat details window
Mitre TTPs are displayed using their full names in the ATT&CK TACTICS AND TECHNIQUES section.
Resolved issues
The Indicator reputation section displayed when viewing threat search results now provides a correct timestamp.
Clicking on search suggestions when performing a cumulative search in the Threat Search page no longer fails to add the item to the search box.
Other minor bug fixes.
Version 1.15.0
Release date: 2024.08.08
Improvements
The Graph view window
You can now view additional information when displaying the indicator details side panel:
MITRE details
Country IPs
Exploited vulnerabilities
Note
The information is displayed only when available and applicable.
The indicator details side panel now provides links to related local and network indicators.
Threat details window
The total number of detected indicators is now displayed at the top of the Indicators tab, grouped per type.
The AI-generated threat description section now directly displays previously generated descriptions.
Actor details window
Improved the structure and interaction with the MITRE ATT&CK Tactics and Techniques section.
Resolved issues
Fixed an issue preventing some admins from reseting user passwords.
Resolved an issue causing the Threat Search page to incorrectly display results from a previous search. This issue would occurr immediately after logging in, and when searching using a URL indicator.
An error message is now properly displayed on the Threat Search page when using an invalid query containing the cumulative search property
device_type
.Other minor bug fixes.
Version 1.14.0
Release date: 2024.07.11
New features
The Threat Reports page is now available in the IntelliZone console. It provides you access to recent reports created by Bitdefender, containing information on significant trends and developments in the threat landscape.
Improvements
Indicators previously identified as malicious but no longer classified as such are now displayed when viewing threat information.
New information is avaliable under the eCrime and organizations fields when displaying threat actor information.
The Graph view window now includes arrows to indicate the nature of the relationship between nodes.
You can now click on individual nodes in the Graph view window do display the a side panel with additional information.
Version 1.11.0
Release date: 2024.05.24
New features
AI generated threat descriptions are now available. You can use the feature to automatically generate descriptions for threats based on the most recent threat information available.
You can access the feature from the Threat details page.
Improvements
IntelliZone users with the Company Admin roles can now view and copy the company and user ID. This information is needed for GravityZone integration.
The IOC section in the Threat details page, along with the IoC Reputation side panel have been improved.
Clicking on links under the References section in the Threat details page now opens the Bitdefender blog page in a new browser window.
Version 1.10.0
Release date: 2024.04.19
New features
The Graph View window is now available for certain threats. The new feature provides a graphical representation of how a threat spreads and uses certain nodes.
You can access the window either from the Extended Threat View or from the Threat Search results.
Nodes have different icons and shapes based on their IoC type.
Link labels are displayed between nodes that indicate the actions taken by the threat when moving from node to note.
You can zoom in an out.
Improvements
A new version of the Threat Intelligence API documentation is available.
Version 1.9.0
Release date: 2024.04.03
New features
You can select from the following formats when downloading reports from the Sandbox Analyzer page:
HTML
,JSON
,JSON (summary)
.
Improvements
The Submission details pane in the Sandbox Analyzer page now displays the following information: File type, Submission date, and Analysis date.
Performed several improvements in the way information is displayed in the Submission details pane in the Sandbox Analyzer page:
Improved the way countries are displayed under the Target countries section.
Changed spacing for better readability.
The More options button on the right side of the All submissions table in the Sandbox Analyzer page has been replaced with the Edit description button.
Editing a submission description in the Sandbox Analyzer page now shows the existing description instead of displaying a blank field.
Resolved issue
Fixed navigation issues in the Threat Search page.
Version 1.8.0
Release date: 2024.03.13
New features
You can now download IoC related information from the Submission details panel in the Sandbox Analyzer page.
Version 1.7.0
Release date: 2024.02.29
New features
The Force detonation option is now available when using the Advanced submission feature to submit files in the Sandbox analyzer page.
The References section has been added in the Threat view window for a specific threat. When more than one reference is available, the section is displayed in the panel from the Treat search window. The section contains links for articles that are references for the threat being displayed.
Improvements
Increased performance for threat information searches.
Version 1.6.0
Release date: 2024.02.07
New features
Reputation data is now available when searching for threat information using IP and file indicators.
Process indicators are now available when displaying the Threat view window for a specific threat.
You can now provide a password when submitting archived files in the Sandbox Analyzer page. The password is used to access the submitted archives.
Improvements
The UI in the Actors tab has been improved. You can access the tab when viewing threat information in the Threat Search page.
Version 1.5.1
Release date: 2024.01.18
Resolved issues
Fixed several minor bugs.
Version 1.5.0
Release date: 2023.11.22
New features
A new tab is available when displaying the Submission details side panel in the Sandbox Analyzer page: IoC. The tab provides access to a comprehensive list of indicators of content provided by Sandbox for the selected submission.
Documentation
API documentation specific to all services is now available and provided to customers when purchasing a license for a specific service.
Version 1.4.0
Release date: 2023.11.10
New features
The Cumulative search feature is now available in the Threat Search page. This feature allows you to combine multiple search criteria when searching for threats.
Improvements
The Help and Support Page has a new and improved UI.
The TTL field is no longer being displayed for
file
andcertificate
indicators.
Version 1.3.0
Release date: 2023.09.28
Improvements
The IoC reputation section has been redesigned. This information is displayed whenever searching for threats using URL, domain, or clean MD5 hash IoCs.
The Advanced Feeds tab in the Preview Feeds page is now called Operational Feeds.
The Feeds Preview page is now called Preview Feeds.
Version 1.2.0
Release date: 2023.09.11
Improvements
You can now download Reputation Feeds previews.
IoCs present in threats that have
human-analysis
tag are now always displayed in relationship to those threats, regardless of their status.IoCs that have the
sinkholed
tag are now always displayed, regardless of their status.
Version 1.1.0
Release date: 2023.08.23
Improvements
General UI quality of life improvements.
Added a new panel when viewing threats in the Threat Search page: Threat family profile.
Resolved issues
Fixed several minor bugs.
Initial release
Release date: 09.05.2023
Bitdefender IntelliZone is an easy-to-use solution designed to assist security professionals in proactively identifying, monitoring, and mitigating cyber-threats. The Threat Intelligence portal consolidates all the knowledge we've gathered regarding cyber threats and the associated threat actors into a single pane of glass for the security analysts, including access to Bitdefender’s next-generation malware analysis service.
The IntelliZone console is being released with the following features:
Threat Search
Threat View
Preview Feeds
Help & Support